Twitter has finally acknowledged "numerous" Twitter account names and password had been indeed stolen. Twitter promises it has taken immediate action to reset those passwords, so the users should be safe. The breach didn't come from Twitter's servers though. According to the company, the hackers made lots of various attacks towards other websites and services which use Twitter plugins and store Twitter data. Here is the official statement: "We've investigated claims of Twitter @names and passwords available on the "dark web," and we're confident the information was not obtained from...
Source: http://www.gsmarena.com/twitter_recognizes_the_breach_its_not_the_companys_servers_though-news-18752.php